Matrix Botnet Targets IoT Vulnerabilities in DDoS Campaign

Matrix botnet exploits IoT vulnerabilities for DDoS attacks. A threat actor known as Matrix has been linked to a large-scale distributed denial-of-service (DDoS) campaign that targets vulnerabilities in Internet of Things (IoT) devices, creating a disruptive botnet. This operation, described as a “do-it-all-yourself” approach to cyberattacks, primarily affects IP addresses in China and Japan, with financial motivations driving the attacks. Matrix exploits known security flaws and weak credentials in devices like IP cameras and routers, utilizing publicly available scripts and tools to deploy malware, including the Mirai botnet. The campaign is reportedly advertised as a DDoS-for-hire service via a Telegram bot, highlighting the need for improved security practices to mitigate such opportunistic attacks.